A large technology company, which had fragmented IT practices, desperately needed a new Active Directory (AD) strategy.
As part of this new strategy, the organization wanted to perform an audit of their aging Microsoft Active Directory architecture and deployment to ensure cybersecurity best practices and considerations for moving to the cloud.
The company has had a dedicated team of experts managing their AD, but has never had a third party validate their implementation or provide consultation on processes and standards.
Leery of working with a third party, the organization wanted a trusted and unbiased vendor to perform the assessment. They came to WWT.
The assessment examined more than a dozen domains, hundreds of domain controllers and millions of accounts.
Key objectives of the assessment included:
To meet these objectives, we used an automated, script-driven data collection process developed by our end-user computing team that produced valuable pages of documented details. Then, to supplement and put this data into context, we interviewed members of the organization’s access management engineering team.
We conducted the lengthy assessment in less than 60 days and presented the organization with an assessment that uncovered many risks and vulnerabilities that required immediate remediation.
Our final report identified strengths and weaknesses related to key objectives, reviewed areas of noncompliance and provided prescriptive recommendations with a roadmap for improvement over the next three months, three quarters and three years.
Our key recommendations included:
Based on our assessment, the organization is engaging us as a trusted advisor for consulting services support to get their AD processes back on track. The organization is also considering using our labs for OEM product testing to help with AD management in the future. Finally, we will be evaluating the organization’s governance, risk and compliance processes and procedures.